RE: S/MIME With Public Trusted PKI
From: Administrator (Administrator_at_discussions.microsoft.com)
Date: 09/07/04
- Next message: char7es: "Re: Routing Engine not starting, please help ASAP"
- Previous message: Joe: "Re: Exchange 2003 crashing"
- Messages sorted by: [ date ] [ thread ]
Date: Tue, 7 Sep 2004 15:09:03 -0700
Per a post in Exchange clients, I'm having trouble enabling OWA support for
public trusted PKI issued mail certificates.
What would be the right way to enable such use?
"Kenny Wood" wrote:
> Hello Dave,
>
> First off Exchange 2003 doesn't have anything to do with PKI or SMIME management anymore
> (this ended in Exchange 2000). PKI will rely solely in Outlook and Windows Certificate Authority
> Services, all Exchange will do is be the transport for SMIME.
>
> Outside of that, you could obtain a Certificate Authority Server Cert from an object/company
> already in the trusted root store. You would then need to build your chain such that each cert
> has a valid and reachable destination (of the issuing CA) in the AIA field, so that a trusted chain
> can be built. I do not know whether or not Non MS products will build the chain using the AIA
> field, but our products should.
>
> Thank you for your post.
>
> Kenny Wood
> CISSP, MCSE (+S, +M)
> PSS Security
> Microsoft Corporation
> --
>
> This posting is provided "AS IS" with no warranties, and confers no rights. Use of included
> script samples are subject to the terms specified at http://www.microsoft.com/info/cpyright.htm
>
> Note: For the benefit of the community-at-large, all responses to this message are best
> directed to the newsgroup/thread from which they originated.
> --------------------
> | Thread-Topic: S/MIME With Public Trusted PKI
> | thread-index: AcSNEGZ2JFyG/hNeRpGMdSvjSmoW8Q==
> | X-WBNR-Posting-Host: 209.239.21.178
> | From: "=?Utf-8?B?RGF2ZSBNb3Jyb3c=?=" <DaveMorrow@discussions.microsoft.com>
> | Subject: S/MIME With Public Trusted PKI
> | Date: Sat, 28 Aug 2004 08:05:05 -0700
> | Lines: 8
> | Message-ID: <118B73F2-7CA6-4A3F-B4EC-AF9017B6DBBC@microsoft.com>
> | MIME-Version: 1.0
> | Content-Type: text/plain;
> | charset="Utf-8"
> | Content-Transfer-Encoding: 7bit
> | X-Newsreader: Microsoft CDO for Windows 2000
> | Content-Class: urn:content-classes:message
> | Importance: normal
> | Priority: normal
> | X-MimeOLE: Produced By Microsoft MimeOLE V6.00.3790.0
> | Newsgroups: microsoft.public.exchange.admin
> | NNTP-Posting-Host: TK2MSFTNGXA03.phx.gbl 10.40.1.29
> | Path: cpmsftngxa10.phx.gbl!TK2MSFTNGXA03.phx.gbl
> | Xref: cpmsftngxa10.phx.gbl microsoft.public.exchange.admin:443932
> | X-Tomcat-NG: microsoft.public.exchange.admin
> |
> | I am looking for some information regarding setting up Exchange Server 2003
> | to support S/MIME when using certificates from a third party trusted PKI such
> | as Verisign. All information on MS site appears to be geared towards running
> | your own PKI. This will not work for me since some people I need to exchange
> | S/MIME messages with are internet at companies which may not trust my CA. I
> | am trying to avoid individual users on my network managing their own Personal
> | Certs which they aquire from Verisign or other CA's. Any assistance would be
> | greatly appreciated.
> |
>
>
>
- Next message: char7es: "Re: Routing Engine not starting, please help ASAP"
- Previous message: Joe: "Re: Exchange 2003 crashing"
- Messages sorted by: [ date ] [ thread ]
Relevant Pages
|
